​@Higor Yes, SAML accounts will be removed from local Administrators groups or any local group, when the below option is enabled.

Configuration → Authentication Management → Authentication Options. 

Oh nice. So in this case I should keep this option unchecked, right? Does it interfere in any other SAML process?

If I understood correctly, if I disable it the groups assigned to users will not be removed, even they are removed from AD. It can cause inconsistences in my access.

If you want your users not be removed from local groups then you should disable the group resync.

Are you controlling the group assignment from SAML as well?

I am controlling only one SAML group. Which contains ALL password safe users. The access inside Password Safe is controlled by AD - which is replicated to PS in a daily bases.